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AMENDMENTS TO THE CLAIMS 

This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1. (Currently Amended) In a computerized network environment including a client 
system, a network provider, and one or more devices that can be accessed locally or over a 
network, a method for providing the client system access to one or more of the devices through 
the network provider, the method comprising the following: 

an act of identifying a set of the one or more devices that can be accessed locally 
or over a network , the set being based on a client identity and consisting of only devices 
to which the client has been assigned and to which the client is to be provided access ; 

an act of generating a target that identifies a set o ft he set of the one or more 
devices, and that includes at least one corresponding device identifie r, wherein the set of 
one or more devices is determined based on each of the devices having at least one 
common group of clients authorized to access the device ; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more device s, wherein only 
clients having client authorization information associated with the target can access the 
devices identified by the target through the network provider ; and 

an act of assigning the target to a port through a protocol-independent port driver 
at the network provider. 

2. (Previously Presented) The method as recited in claim 1, wherein the set of the 
one or more devices can be accessed locally through a local access protocol. 

3. (Previously Presented) The method as recited in claim 1, wherein the set ofthe 
one or more devices is a network device that can be accessed on a network through a network 
access protocol. 
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4. (Previously Presented) The method as recited in claim 1, wherein the act of 
identifying a set of one or more devices further includes an act of creating one or more devices 
that can be accessed over the network. 

5. (Previously Presented) The method as recited in claim 4, wherein the act of 
creating one or more devices includes an act of identifying at least one of a partition and file, 
wherein the at least one of a partition and file represents at least a portion of one of the one or 
more devices, and wherein the at least one of a partition and file can be configured by the 
network provider to provide the client modifiable access to the portion of the one of the one or 
more devices. 

6. (Original) The method as recited in claim 1, further comprising an act of 
providing client access to one or more of a port, a WWN, and a portal through the protocol- 
independent port driver, such that the protocol-independent port driver is accessed through one 
or more protocol-dependent mini-ports. 

7. (Original) The method as recited in claim 6, wherein the protocol-independent 
port driver and one or more protocol-dependent mini-port drivers are managed by the centralized 
service, and wherein the one or more protocol-dependent miniport drivers plug-in to the 
protocol-independent port driver. 

8. (Original) The method as recited in claim 7, wherein at least one of the one or 
more protocol-dependent miniport drivers communicates through one or more of an Ethernet, 
Token Ring, fiber channel, USB, or wireless protocol. 

9. (Original) The method as recited in claim 1, wherein the at least one device is a 
virtual SCSI device that can be accessed through an iSCSI protocol. 

10. (Original) The method as recited in claim 9, wherein the virtual SCSI device is a 
storage device, and the network comprises a storage area network. 
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1 1 . (Original) The method as recited in claim 10, wherein the storage device is one or 
more of an internal or external magnetic storage medium, an optical storage medium, and a tape 
backup drive. 

12. (Original) The method as recited in claim 1, wherein the network provider 
manages one or more targets, one or more drivers, and authentication information for one or 
more clients through a centralized directory service. 

13. (Original) The method as recited in claim 12, wherein the network device 
identifier is identified by a target name and a LUN that has been assigned to the at least one 
device by the centralized directory service. 

14. (Previously Presented) The method as recited in claim 13, wherein the logical unit 
number refers to one or more of a device, a plug-and-play identifier for a device, a global unique 
identifier for a device, a device driver that interfaces with a device, and at least one of a partition 
and file that represents a portion of a device. 
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15. (Currently Amended) In a computerized network environment including a client 
system, a network provider, and one or more devices that can be accessed locally or over a 
network, a computer program product comprising computer-executable instructions for 
performing a method for providing the client system access to one or more of the devices over 
the through the network provider, the method comprising the following: 

an act of identifying a set of the one or more devices that can be accessed locally 
or over a network, the set being based on a client identity and consisting of only devices 
to which the client has been assigned and to which the client is to be provided access ; 

an act of generating a target that identifies a set o ft he set of the one or more 
devices, and that includes at least one corresponding device identifie r, wherein the set of 
one or more devices is identified based on each of the devices having at least one 
common group of clients ; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more device , wherein only 
clients having client authorization information associated with the target can access the 
devices identified by the target- ; and 

an act of assigning the target to a port through a protocol-independent port driver 
at the network provider. 

16. (Previously Presented) The computer program product as recited in claim 15, 
wherein the set of the one or more devices can be accessed locally through a local access 
protocol. 

17. (Previously Presented) The computer program product as recited in claim 15, 
wherein the set of the one or more devices is a network device that can be accessed on a 
network. 

18. (Previously Presented) The computer program product as recited in claim 15, 
wherein the act of identifying a set of one or more devices further includes an act of creating one 
or more devices that can be accessed over the network 
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19. (Original) The computer program product as recited in claim 18, wherein the act 
of creating one or more devices includes an act of identifying at least one of a partition and file, 
wherein the at least one of a partition and file represents at least a portion of one of the one or 
more devices, and wherein the at least one of a partition and file can be configured by the 
network provider to provide the client modifiable access to the portion of the one of the one or 
more devices. 

20. (Original) The computer program product as recited in claim 15, further 
comprising an act of providing client access to one or more of a port, a WWN, and a portal 
through the protocol-independent port driver, such that the protocol-independent port driver is 
accessed through one or more protocol-dependent mini-ports. 

21. (Original) The computer program product as recited in claim 20, wherein the 
protocol-independent port driver and one or more protocol-dependent mini-port drivers are 
managed by the centralized service, and wherein the one or more protocol-dependent miniport 
drivers plug-in to the protocol-independent port driver. 

22. (Original) The computer program product as recited in claim 21, wherein at least 
one of the one or more miniport drivers communicates through one or more of an Ethernet, 
Token Ring, fiber channel, USB, or wireless protocol. 

23. (Original) The computer program product as recited in claim 15, wherein the at 
least one device is a virtual SCSI device that can be accessed through an iSCSI protocol. 

24. (Original) The computer program product as recited in claim 23, wherein the 
virtual SCSI device is a storage device, and the network comprises a storage area network. 

25. (Original) The computer program product as recited in claim 24, wherein the 
storage device is one or more of an internal or external magnetic storage medium, an optical 
storage medium, and a tape backup drive. 
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26. (Original) The computer program product as recited in claim 15, wherein the 
network provider manages one or more targets, one or more drivers, and authentication 
information for one or more clients through a centralized directory service. 

27. (Original) The computer program product as recited in claim 26, wherein the 
device identifier is identified by a target name and a LUN that has been assigned to the at least 
one device by the centralized directory service. 

28. (Original) The computer program product as recited in claim 27, wherein the 
LUN is assigned to one or more of a device identifier, a plug-and-play identifier for a device, a 
global unique identifier for a device; a device driver that interfaces with a device; and at least 
one of a partition and file that represents a portion of a device. 
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29. (Currently Amended) In a computerized network environment including a client 
system, a network provider, and one or more devices that can be accessed locally or over a 
network, a method for providing the client system access to one or more of the devices over the 
through the network provider, the method comprising the following: 

an act of identifying a set of the one or more devices that can be accessed locally 
or over a network , the set being based on a client identity and consisting of only devices 
to which the client has been assigned and to which the client is to be provided access ; 

an act of generating a target that identifies a set of the setof the one or more 
devices, and that includes at least one corresponding device identifie r, wherein the set of 
one or more device is identified based on each of the devices having at least one common 
group of clients ; 

an act of associating client authorization information identified by the network 
provider with the target that identifies the set of the one or more devices , wherein only 
clients having client authorization information associated with the target can access the 
devices identified by the target through the network provider ; and 

a step for exposing the set of the one or more devices to the client through a 
specific one of a network port, a WWN, and a portal, such that the client can access the 
set of the one or more device identified by the target when the client has access to the 
specific one of a network port, a WWN, and portal, and when the client presents the 
associated client authorization to the network provider. 

30. (Previously Presented) The method as recited in claim 29, wherein the step for 
exposing the set of the one or more devices to the client through a specific one of a network 
port, a WWN, and a portal comprises: 

an act of assigning the target to a port through a protocol-independent port driver 
at the network provider; and 

an act of providing client access to the specific one of a port, a WWN, and a 
portal through the protocol-independent port driver, such that the protocol-independent 
port driver is accessed through one or more protocol-dependent mini-ports. 
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31. (Original) The method as recited in claim 30, wherein the client is provided 
access to the specific one of a port, a WWN, and a portal by virtue of being authenticated at one 
or more of a local centralized service provider, and a remote authentication database. 
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32. (Currently Amended) In a computerized environment including a client computer 
and a storage service provider on a storage area network, the storage service provider comprising 
one or more a plurality of storage devices, a method of providing the client computer with access 
to one or more of the plurality of storage devices on the storage service provider through an 
iSCSI protocol, the method comprising the following: 

an act of identifying one or more device a plurality of identifiers corresponding to 
one or more the plurality of storage devices on a storage service provider, wherein at least 
one of the one or more plurality of storage devices are represented is represented by at 
least one of a partition and a or a file, wherein the partition and file each allow indirect 
access to the at least one storage device; 

an act of receiving from a centralized directory service a modifiable client 
resource that identifies client authorization to access at least the at least one of the 
plurality of storage devie edevices , and a portion of theeach storage device that the client 
can access; 

an act of creating a target containing one or more a plurality of logical unit 
numbers that have been assigned to the identified device identifiers, the target consisting 
of only logical units numbers to which the client has been assigned and to which the 
client is to be provided access, wherein the client can access only those storage devices 
represented by a logical unit number contained in the target using storage service 
provider, and wherein access to the target is provided according to the modifiable client 
resource; [[and]] 

an act of providing the client computer access to the plurality of storage devices 
represented by the plurality of logical unit numbers contained in the target deviee through 
a client-restricted port on the storage service provider, such that if-the- when the client has 
access to the client-restricted port, the client can access the plurality of storage devices 
device contained in the target by providing the storage service provider with client 
authorization 

an act of receiving, at the storage service provider, a client computer request to 
access at least the at least one of the plurality of storage devices, wherein the client 
computer request is received through a protocol dependent mini-port; 

an act of receiving client authorization; and 
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upon recognizing that the client authorization corresponds with the requested at 
least the at least one of the plurality of storage devices, and that the client is authorized to 
access the target, providing the client computer with access to at least the at least one of 
the plurality of storage devices in the target . 

33. (Currently Amended) The method as recited in claim 32, wherein the centralized 
directory service receives client access information from at least one of a local and remote or 
remote database. 

34. (Canceled). 

35. (Currently Amended) The method as recited in claim 32, wherein the client- 
restricted port is managed by the centralized directory service and a protocol-independent port 
driver that receives network traffic through one or more protocol-dependent mini-port drivers. 

36. (Original) The method as recited in claim 35, wherein the one or more protocol- 
dependent mini-port drivers are plug-ins to the protocol-independent port driver. 

37. (Original) The method as recited in claim 36, wherein at least one of the one or 
more mini-port drivers communicates through one or more of an Ethernet, Token Ring, USB, 
fiber channel, or wireless connection protocol. 
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